SKILL

Gke Basics

Plan, create, and configure production-ready Google Kubernetes Engine (GKE) clusters using the golden path Autopilot configuration. Covers Day-0 checklist, Autopilot vs Standard, networking (private clusters, VPC-native, Gateway API), security (Workload Identity, Secret Manager, RBAC hardening), observability, scaling, cost optimization, and AI/ML inference. WHEN: create GKE cluster, provision GKE environment, design GKE networking, secure GKE, optimize GKE cost, GKE autoscaling, GKE inference, GKE upgrade, GKE observability, GKE multi-tenancy, GKE batch, GKE HPC, GKE compute class.

Published by @google·0 agent reads / 30d·0 saves·

Google Kubernetes Engine (GKE) Basics

GKE is a managed Kubernetes platform on Google Cloud for deploying, scaling, and operating containerized applications. This skill defaults to the golden path Autopilot configuration — see gke-golden-path.md for defaults, rules, and guardrails.

Quick Start

gcloud services enable container.googleapis.com --quiet
gcloud container clusters create-auto my-cluster --region=us-central1 --quiet
gcloud container clusters get-credentials my-cluster --region=us-central1 --quiet
kubectl create deployment hello-server \
  --image=us-docker.pkg.dev/google-samples/containers/gke/hello-app:1.0

Reference Directory

Load the relevant reference based on trigger keywords. Prefer the most specific match; if ambiguous, ask the user to clarify.

ScenarioTrigger KeywordsReference
Core ConceptsAutopilot vs Standard, architecture, pricing, what is GKEcore-concepts.md
Golden Path & Defaultsgolden path, Day-0 checklist, production defaults, cluster defaultsgke-golden-path.md
Cluster Creationcreate cluster, new cluster, provision GKEgke-cluster-creation.md
Networkingprivate cluster, VPC, subnet, Gateway API, DNS, ingress, egress, datapathgke-networking.md
Security & IAMWorkload Identity, Secret Manager, RBAC, Binary Auth, hardening, audit, gVisor, IAM rolesgke-security.md
ScalingHPA, VPA, autoscaler, autoscaling, NAP, scale pods, scale nodesgke-scaling.md
Compute ClassesComputeClass, machine family, Spot fallback, GPU node pool, node selectiongke-compute-classes.md
Costcost, savings, Spot VMs, rightsizing, CUD, optimize spend, budgetgke-cost.md
AI/ML Inferenceinference, model serving, LLM, GPU, TPU, GIQ, vLLMgke-inference.md
Upgradesupgrade, maintenance window, release channel, patching, versiongke-upgrades.md
Observabilitymonitoring, logging, Prometheus, Grafana, metrics, alerts, dashboardsgke-observability.md
Multi-tenancymulti-tenant, namespace isolation, team access, enterprise, RBAC planninggke-multitenancy.md
Batch & HPCbatch, HPC, job queue, high performance, MPI, parallelgke-batch-hpc.md
App Onboardingcontainerize, deploy app, Dockerfile, onboard, migrate to GKEgke-app-onboarding.md
Backup & DRbackup, restore, disaster recovery, CMEKgke-backup-dr.md
Storagestorage, PVC, persistent volume, StorageClass, Filestore, GCS FUSEgke-storage.md
ReliabilityPDB, health probe, liveness, readiness, topology spread, graceful shutdowngke-reliability.md
Client Librariesclient library, client-go, kubernetes python, kubernetes java, kubernetes SDKclient-library-usage.md
Infrastructure as CodeTerraform, IaC, HCL, infrastructure as codeiac-usage.md
MCP ServerMCP tools, MCP server, MCP setupmcp-usage.md
CLI / Toolsgcloud, kubectl, commands, how tocli-reference.md
Production Auditproduction readiness, compliance, golden path checkgke-cluster-creation.md

If you need product information not found in these references, use the Developer Knowledge MCP server search_documents tool.

Bundled with this artifact

26 files

Reference files that ship alongside this artifact. Agents pull these in only when the task needs them.

More on the bench

SKILL0

Workload Manager Basics

Use this skill to manage Google Cloud Workload Manager evaluations, rules, scanned resources, and validation results by using public client libraries and the REST API. Use when you need to inspect workload best-practice rules, create and run evaluations for Google Cloud general best practices, SAP, SQL Server, or custom organizational rules, review violations, export results to BigQuery, or automate Workload Manager through client libraries because no service-specific public CLI or MCP server is available. Don't use for general Google Compute Engine instance management, VPC configuration, or standard IAM auditing.

google
software-engineering+2
0
SKILL0

Google Cloud Recipe Onboarding

Guides a developer's first steps on Google Cloud, covering account creation, billing setup, project management, and deploying a first resource. Use when a new developer wants to initialize their first Google Cloud project, configure billing, and verify deployment. Don't use for enterprise organization setup (use Google Cloud Setup guided flow for that instead). Don't use for complex multi-project architectures.

google
software-engineering+2
0
SKILL0

Google Cloud Recipe Auth

Provides expert guidance on authenticating and authorizing to Google Cloud services and APIs, covering human users, service identities, Application Default Credentials (ADC), and best practices for secure access.

google
software-engineering+2
0